You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
DNS SRV record server delegation doesn't work when following the documentation
The route name for the federation api has changed
# To serve the federation from any domain, as long as the path matchesmatrix_synapse_container_labels_public_federation_api_traefik_rule: PathPrefix(`/_matrix/federation`)# To let Traefik know which domains' certificates to servematrix_synapse_container_labels_additional_labels: | traefik.http.routers.matrix-synapse-federation-api.tls.domains.main="example.com" traefik.http.routers.matrix-synapse-federation-api.tls.domains.sans="*.example.com"
the router labels should now have public in their name: traefik.http.routers.matrix-synapse-public-federation-api.rule
Unfortunately the federation tester still complains that it received a 404 response when I fix the above mentioned labels.
my solution
Disclaimer: I don't know if it is the best solution, but feel free to add it to the documentation if you want to
Instead of the changes mentioned the documentation I had to set the following variable to get it working (and configure a way to get my base domain certificate):
(optional bonus info) getting the base domain certificate from a existing externally running acme script
configure the acme script to put the certificate and key into matrix/traefik/ssl/mydomain.tld/
configure the playbook to use the certificate:
# Tell Traefik to load our custom configuration file (certificates.yml).# The file is created below, in `aux_file_definitions`.# The `/config/..` path is an in-container path, not a path on the host (like `/traefik/config`). Do not change it!devture_traefik_configuration_extension_yaml: | providers: file: filename: /config/certificates.yml watch: true# Use the Auxiliary file role to create our custom files on the server.aux_file_definitions:
# Create the custom Traefik configuration.# The `/ssl/..` paths below are in-container paths, only adjust `mydomain.tld` to your domain
- dest: "{{ devture_traefik_config_dir_path }}/certificates.yml"content: | tls: certificates: - certFile: /ssl/mydomain.tld/fullchain.pem keyFile: /ssl/mydomain.tld/privkey.pem stores: default: defaultCertificate: certFile: /ssl/mydomain.tld/fullchain.pem keyFile: /ssl/mydomain.tld/privkey.pem
DNS SRV record server delegation doesn't work when following the documentation
the router labels should now have public in their name:
traefik.http.routers.matrix-synapse-public-federation-api.rule
my solution
Disclaimer: I don't know if it is the best solution, but feel free to add it to the documentation if you want to
Instead of the changes mentioned the documentation I had to set the following variable to get it working (and configure a way to get my base domain certificate):
(optional bonus info) getting the base domain certificate from a existing externally running acme script
matrix/traefik/ssl/mydomain.tld/
Matrix Server:
The text was updated successfully, but these errors were encountered: